参照一下我的,希望能对你有用
Server1:10.38.223.234
Server2:10.38.223.195
一、Server1到Server2的SSH创建
1、以root用户在Server1上创建
xuzhou:~ # ssh -l root 10.38.223.195
Password:
xuzhou:~ # ssh-keygen -t rsa
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa):
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /root/.ssh/id_rsa.
Your public key has been saved in /root/.ssh/id_rsa.pub.
The key fingerprint is:
2f:15:bd:5a:94:aa:da:0e:4e:c1:5d:d4:be:2f:03:a6 root@xuzhou
注意:输入上面的ssh-keygen命令后,可以不用输入任何信息,直接回车,但也可以根据自己的实际情况来
设置,其中 -t rsa是指的加密类型,创建后的密钥在root用户主目录的隐藏目录.ssh中
2、进入root用户的.ssh目录查看信息
xuzhou:~ # cd .ssh/
xuzhou:~/.ssh # ls
. .. id_rsa id_rsa.pub known_hosts
xuzhou:~/.ssh #
注意:其中id_rsa是Server1的私钥,id_rsa.pub是Server1的公钥,known_hosts里面保存着所有已发生连接服务 器的信息。
这里我们需要将公钥里的信息拷贝到登陆服务器Server2的root用户主目录下的.ssh文件authorized_keys中
3、查看生成的公钥信息
xuzhou:~/.ssh # cat id_rsa.pub
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAuElBG8qyi/jlVRoVU5iDRablt7kmPYTDd38ljBkmVKo9KY9KyYzDRr3mLMwnnEUqPR8F5JLtDwRmH25nVmUElAbchZxgxyqvodpXtVjsvNE8k8iKdM16GavogO09qm8j3YErMY0/+pTK+Ir2ntICnNFpppcVCn1AR6uHOZMxLDE= root@xuzhou
4、将Server1公钥id_rsa.pub传送到Server2的root主目录下.ssh目录间的authorized_keys中(该文件需要手动创 建)
xuzhou:~/.ssh # scp -r id_rsa.pub
root@10.38.223.195:/root/.ssh/10.38.223.195
Password:
id_rsa.pub 100% 221 0.2KB/s 00:00
xuzhou:~/.ssh #
5、在Server2上查看拷贝过来的id_rsa.pub内容并将其复制到authorzied_keys
xuzhou:~/.ssh # ssh -l root 10.38.223.195
Password:
Last login: Sun Jul 6 12:20:22 2008 from 10.38.223.239
suining:~ # cd .ssh/
suining:~/.ssh # ls
. .. 10.38.223.195 known_hosts
suining:~/.ssh # cat 10.38.223.195
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAuElBG8qyi/jlVRoVU5iDRablt7kmPYTDd38ljBkmVKo9KY9KyYzDRr3mLMwnnEUqPR8F5JLtDwRmH25nVmUElAbchZxgxyqvodpXtVjsvNE8k8iKdM16GavogO09qm8j3YErMY0/+pTK+Ir2ntICnNFpppcVCn1AR6uHOZMxLDE= root@xuzhou
6、在Server2创建authorized_keys,并将10.38.223.195这个文件里的内容复制到authorized_keys里面
suining:~/.ssh # touch authorized_keys
suining:~/.ssh # ls
. .. 10.38.223.195 authorized_keys known_hosts
suining:~/.ssh # cat 10.38.223.195 >> authorized_keys
7、在Server2上查看复制到authorized_keys的内容
suining:~/.ssh # cat authorized_keys
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAuElBG8qyi/jlVRoVU5iDRablt7kmPYTDd38ljBkmVKo9KY9KyYzDRr3mLMwnnEUqPR8F5JLtDwRmH25nVmUElAbchZxgxyqvodpXtVjsvNE8k8iKdM16GavogO09qm8j3YErMY0/+pTK+Ir2ntICnNFpppcVCn1AR6uHOZMxLDE= root@xuzhou
suining:~/.ssh #
8、退出Server2,再次在Server1上测试SSH到Server2
suining:~/.ssh # exit
logout
Connection to 10.38.223.195 closed.
xuzhou:~/.ssh # ssh -l root 10.38.223.195
Last login: Sun Jul 6 12:49:54 2008 from xuzhou.js
suining:~ #
若发现不需要用户密码就可以登陆成功,说明设置正确
注意:Server2到Server1的SSH创建和上述方法一样,略。
Powered by IXPUB.Net © 2001-2007 All Right Reserved. 
